DocumentCode
479955
Title
Camouflage Attack Detection Based on KMOD Kernel Function
Author
Ku, Zaiqiang ; Hu, Zhihua
Author_Institution
Inst. of Uncertain Syst., Huanggang Normal Univ., Huanggang
Volume
2
fYear
2008
fDate
12-14 Dec. 2008
Firstpage
1031
Lastpage
1034
Abstract
The feature of UNIX command sequences is analyzed, and the user profile and camouflage attack detection technology based on OCSVM is proposed. OCSVM is an algorithm to deal with single value classification, while string kernel is a function to handle sequenced data. According to the feature of command sequence, two new string kernel functions are put forward by improving the general function. Experiments show that the detection method using string kernel based on OCSVM can achieve much higher detection accuracy comparing to the present camouflage attack detection methods.
Keywords
Unix; security of data; UNIX command sequences; camouflage attack detection technology; sequenced data; single value classification; Change detection algorithms; Classification algorithms; Computer science; Educational institutions; Hidden Markov models; Information analysis; Kernel; Software engineering; Support vector machines; Uncertain systems;
fLanguage
English
Publisher
ieee
Conference_Titel
Computer Science and Software Engineering, 2008 International Conference on
Conference_Location
Wuhan, Hubei
Print_ISBN
978-0-7695-3336-0
Type
conf
DOI
10.1109/CSSE.2008.1525
Filename
4722227
Link To Document